CVE-2010-0760
Joomla! Plugin Core Design Scriptegrator - Local File Inclusion
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
1Exploited in Wild
-Decision
Descriptions
Multiple directory traversal vulnerabilities in the Core Design Scriptegrator plugin 1.4.1 for Joomla! allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the (1) file parameter to libraries/jquery/js/ui/jsloader.php and the (2) files[] parameter to libraries/jquery/js/jsloader.php, a different vector than CVE-2010-0759. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Múltiples vulnerabilidades de salto de directorio en el plugin Core Design Scriptegrator plugin 1.4.1 para Joomla!, permite a atacantes remotos incluir y ejecutar ficheros locales de su elección mediante secuencias de salto de directorio en el parámetro (1) file sobre libraries/jquery/js/ui/jsloader.php y (2) files[] sobre libraries/jquery/js/jsloader.php , vector distinto a CVE-2010-0759. NOTE: el origen de esta información es desconocido, los detalles se han obtenido de terceras partes solamente.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2010-02-18 First Exploit
- 2010-02-26 CVE Reserved
- 2010-02-27 CVE Published
- 2024-09-17 CVE Updated
- 2024-09-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
CAPEC
References (4)
| URL | Tag | Source |
|---|---|---|
| http://www.osvdb.org/62484 | Vdb Entry | |
| http://www.osvdb.org/62485 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/11498 | 2010-02-18 |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/38637 | 2010-03-01 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Greatjoomla Search vendor "Greatjoomla" | Scriptegrator Plugin Search vendor "Greatjoomla" for product "Scriptegrator Plugin" | 1.4.1 Search vendor "Greatjoomla" for product "Scriptegrator Plugin" and version "1.4.1" | - |
Affected
| in | Joomla Search vendor "Joomla" | Joomla\! Search vendor "Joomla" for product "Joomla\!" | * | - |
Safe
|